Today > | 3 High | 2 Medium | 5 Low vulnerabilities   -   You can now download lists of IOCs here!

Tag: fast reverse proxy (frp)

1 attack reports | 0 vulnerabilities

Attack reports

Investigating a SharePoint Compromise: IR Tales from the Field

An incident response investigation uncovered an attacker who exploited a SharePoint vulnerability (CVE-2024-38094) to gain initial access. The attacker remained undetected for two weeks, moving laterally across the network and compromising the entire domain. Key tactics included installing Horoung …

credential harvesting
lateral movement
mimikatz
impacket
CVE-2024-38094
2024-11-05
domain compromise
sharepoint
fast reverse proxy (frp)
Published: November 5, 2024

Downloadable IOCs 8

» Click here to see all Attack Reports «